A team of researchers from UC Berkeley have demonstrated that eight AI agent benchmarks can be manipulated to produce ...

Shadow AI 2.0 isn’t a hypothetical future, it’s a predictable consequence of fast hardware, easy distribution, and developer ...

Mac users have a new malware threat to be on the watch out for. According to a new report by Malwarebytes, Infiniti Stealer ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

A routine software update for Anthropic's Claude Code tool accidentally leaked its entire source code, sparking rapid ...

Microsoft ships Agent Framework 1.0 but Azure's agent stack still spans too many surfaces while Google and AWS offer cleaner developer paths.

North Korean hackers used an updated version of a known backdoor to target a popular npm package.

AI chatbots make it possible for people who can’t code to build apps, sites and tools. But it’s decidedly problematic.